AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

Adversary-in-the-middle phishing attacks are still more common in use. Since the removal of basic authentication from Exchange Online more and more attackers are using more modern attacks like adversary-in-the-middle phishing, cookie theft, and other used attacks. Last year I blogged about several modern

Pawel Partyka (@Pawp81) / X

Jeffrey Appel on LinkedIn: Tips for preventing against new modern identity attacks (AiTM, MFA…

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign

AiTM Phishing Attacks: Stolen Session Cookie Creates Havoc in Financial Organizations

Adversary-in-the-Middle (AiTM) phishing attack: Key tactics and defense strategies

What Is An Adversary-in-The-Middle Attack (AiTM)?

How to protect against BEC & AiTM attacks via Microsoft 365 Defender, Automatic Attack Disruption, by Derk van der Woude

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

How 1-Time Passcodes Became a Corporate Liability – Krebs on Security

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign